AWS Certified Advanced Networking – Specialty (ANS-C00) — Question 351

A company has deployed a production environment in the AWS Cloud. The environment is contained in a VPC and includes a virtual private gateway. The company has established an AWS Direct Connect connection. which includes a private Virtual Interface (VIF), and a VPN connection to the on-premises data center.
For traffic originating in the VPC, what is the order of BGP path selection from MOST preferred to LEAST preferred?

Answer options

• A. Direct Connect BGP routes, static routes, longest prefix match, VPN BGP routes.
• B. Static routes, longest prefix match, Direct Connect BGP routes, VPN BGP routes.
• C. Longest prefix match, static routes, Direct-Connect BGP routes, VPN BGP routes.
• D. Longest prefix match, VPN BGP routes, static routes, Direct Connect BGP routes.

Correct answer: C

Explanation

AWS VPC route tables prioritize the longest prefix match (most specific route) first, regardless of the routing protocol or connection type. When prefix lengths are identical, static routes in the route table take precedence over dynamically propagated routes. If multiple dynamic routes exist for the same prefix, AWS Direct Connect BGP routes are preferred over VPN BGP routes.